Trezor, a provider of cryptocurrency hardware wallets, is currently investigating a phishing campaign, following reports of users receiving phishing emails. ZachXBT, an anonymous blockchain sleuth, took to his Telegram channel on October 26th to alert users of the attack. This was further confirmed by a post from Twitter user “JHDN”, who alleged that Trezor may have been breached after receiving a phishing email from the account amministrazione@sideagroup.com.
Similar to other Trezor-related phishing attacks, this one invites users to download the “latest firmware update” to their Trezor devices, in order to “fix an issue in software”. As ZachXBT noted, two other Reddit users also complained about the same Trezor phishing email that same day.
Trezor’s brand ambassador, Josef Tetek, has confirmed that the company is aware of the ongoing phishing campaign and is actively looking into it. He also mentioned that Trezor is continuously reporting fake websites, contacting domain registrars and educating and warning their customers of known risks.
According to one article, phishing emails often redirect users to download a Trezor Suite lookalike app, which will ask them to connect their wallet and enter their seed. This is a very dangerous action as it will immediately give the attacker access to the user’s funds.
Tetek encourages users to never enter their recovery seed directly into any website, mobile app or type it into a computer. The only safe way to work with the recovery seed is as per the instructions shown on a connected Trezor hardware wallet.
Cryptocurrency investors have been suffering from multiple phishing attacks, with the number of cryptocurrency phishing attacks seeing a 40% increase in 2022. In September, a large crypto investor reportedly fell victim to a massive phishing campaign, losing $24 million worth of crypto assets.
To protect your crypto in a volatile market, it is important to take all necessary precautions, such as being aware of any phishing attacks and being diligent while handling sensitive information.
